CVE-2025-31801

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Maksym Marko MX Time Zone Clocks mx-time-zone-clocks allows Reflected XSS.This issue affects MX Time Zone Clocks: from n/a through = 5.1.1...

CVE-2025-31801

CVE-2025-31801 affects MX Time Zone Clocks (WordPress plugin). Connected data confirm a Stored XSS issue (authenticated, contributor+) due to input handling, with affected range up to 5.1.1. Publicly available exploitation details or vectors are not provided in the documents. Remediation/patch ve...

CVE-2025-31801 WordPress MX Time Zone Clocks plugin <= 5.1.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Maksym Marko MX Time Zone Clocks mx-time-zone-clocks allows Reflected XSS.This issue affects MX Time Zone Clocks: from n/a through = 5.1.1...

CVE-2025-31801 WordPress MX Time Zone Clocks plugin <= 5.1.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Maksym Marko MX Time Zone Clocks mx-time-zone-clocks allows Reflected XSS.This issue affects MX Time Zone Clocks: from n/a through = 5.1.1...

WordPress plugin MX Time Zone Clocks 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

VulnCheck KEV: CVE-2022-20933

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z3 Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient validation of...

The vulnerability of the Cisco AnyConnect VPN server’s microprogramming software in Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateways allows a intruder to trigger a service failure.

The vulnerability of the Cisco AnyConnect VPN server in the microprogramming software for Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateways is related to a reallocation of memory. Exploiting this vulnerability could allow an attacker to cause service interruptions by sending specially...

CVE-2023-6942

Missing Authentication for Critical Function vulnerability in Mitsubishi Electric Corporation EZSocket versions 3.0 to 5.92, GT Designer3 Version1GOT1000 versions 1.325P and prior, GT Designer3 Version1GOT2000 versions 1.320J and prior, GX Works2 versions 1.11M to 1.626C, GX Works3 versions 1.106...

CVE-2022-25164

Cleartext Storage of Sensitive Information vulnerability in Mitsubishi Electric GX Works3 versions from 1.000A to 1.095Z and Mitsubishi Electric MX OPC UA Module Configurator-R versions 1.08J and prior allows a remote unauthenticated attacker to disclose sensitive information. As a result,...

CVE-2024-45652

IBM Maximo MXAPIASSET API 7.6.1.3 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system...

Malicious code in mx-exchange-docs (npm)

This package exfils sensitive data to a attacker-controlled domain via index.js. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 86097f31b903420b95d8b161339744186e28bf4894231a435e0889e51ef07a8e Any computer that has this package installed or running should be...

MAL-2024-12171 Malicious code in mx-exchange-docs (npm)

This package exfils sensitive data to a attacker-controlled domain via index.js. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 86097f31b903420b95d8b161339744186e28bf4894231a435e0889e51ef07a8e Any computer that has this package installed or running should be...

The vulnerability of the Application Layer Gateway module in Juniper Networks’ Junos OS network devices of the SRX and MX series allows a attacker to cause service interruptions.

The vulnerability of the Application Layer Gateway module in Juniper Networks’ Junos OS network devices of the SRX and MX series involves an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of the Packet Forwarding Engine (PFE) module in Juniper Networks’ Junos OS routers of the MX Series and Junos OS routers of the PTX Series and ACX Series allows a attacker to cause service interruptions.

The vulnerability of the Packet Forwarding Engine PFE module in Juniper Networks’ Junos OS routers of the MX Series and Junos OS Evolved routers of the PTX Series and ACX Series is related to improper syntax validation during input verification. Exploiting this vulnerability can allow an attacker...

CVE-2024-47496

A NULL Pointer Dereference vulnerability in the Packet Forwarding Engine pfe of Juniper Networks Junos OS allows a local, low-privileged attacker to cause a Denial-of-Service DoS. When a specific command is executed, the pfe crashes. This will cause traffic forwarding to be interrupted until the...

CVE-2024-47496

A NULL Pointer Dereference vulnerability in the Packet Forwarding Engine pfe of Juniper Networks Junos OS allows a local, low-privileged attacker to cause a Denial-of-Service DoS. When a specific command is executed, the pfe crashes. This will cause traffic forwarding to be interrupted until the...

CVE-2024-47497

An Uncontrolled Resource Consumption vulnerability in the http daemon httpd of Juniper Networks Junos OS on SRX Series, QFX Series, MX Series and EX Series allows an unauthenticated, network-based attacker to cause Denial-of-Service DoS. An attacker can send specific HTTPS connection requests to...

CVE-2024-47497

An Uncontrolled Resource Consumption vulnerability in the http daemon httpd of Juniper Networks Junos OS on SRX Series, QFX Series, MX Series and EX Series allows an unauthenticated, network-based attacker to cause Denial-of-Service DoS. An attacker can send specific HTTPS connection requests to...

CVE-2024-47493

A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine PFE of the Juniper Networks Junos OS on the MX Series platforms with Trio-based FPCs allows an unauthenticated, adjacent attacker to cause a Denial of Service DoS. In case of channelized Modular...

CVE-2024-39526

An Improper Handling of Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS on MX Series with MPC10/MPC11/LC9600 line cards, EX9200 with EX9200-15C lines cards, MX304 devices, and Juniper Networks Junos OS Evolved on PTX Series, allows an attacker sending...